Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b1/74cf3b-9f5c-4f5e-96c4-2926d281b514/1/J8Tz4CSPeBSNuEjDAHPZrQ8JxEU.roa
File: J8Tz4CSPeBSNuEjDAHPZrQ8JxEU.roa (raw, json)
Hash identifier: TXMh9qT3n5KP7QGbJTGmOpWn8ZmFw8YtTTsedGv6xvU=
Subject key identifier: 27:C4:F3:E0:24:8F:78:14:8D:B8:48:C3:00:73:D9:AD:0F:09:C4:45
Certificate issuer: /CN=653f55629121b60fb19c97f99c75dd6f015dd6e8
Certificate serial: 018AF8534E51CF5DB43F3A3831650DC2A9C7
Authority key identifier: 65:3F:55:62:91:21:B6:0F:B1:9C:97:F9:9C:75:DD:6F:01:5D:D6:E8
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZT9VYpEhtg-xnJf5nHXdbwFd1ug.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b1/74cf3b-9f5c-4f5e-96c4-2926d281b514/1/J8Tz4CSPeBSNuEjDAHPZrQ8JxEU.roa
Signing time: Wed 04 Oct 2023 01:35:23 +0000
ROA not before: Wed 04 Oct 2023 01:35:23 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 197832
IP address blocks: 146.101.79.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 22:31:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:f8:53:4e:51:cf:5d:b4:3f:3a:38:31:65:0d:c2:a9:c7
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=653f55629121b60fb19c97f99c75dd6f015dd6e8
Validity
Not Before: Oct 4 01:35:23 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=27c4f3e0248f78148db848c30073d9ad0f09c445
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:41:c1:fa:08:82:5a:e7:a2:4b:1f:0f:38:e9:
81:17:02:2a:06:a7:ff:93:51:ea:ac:02:c9:71:2f:
bc:00:c9:5c:af:5b:94:7c:84:ec:79:c3:a1:61:50:
dd:04:76:d3:02:73:9a:90:4c:63:2a:d8:14:d5:f3:
99:38:d0:eb:3b:bd:b6:7a:8f:f5:64:71:2b:be:4c:
31:af:30:a2:28:01:c0:52:3d:fd:20:9d:0b:db:f4:
21:b3:e3:67:3d:18:14:ba:f6:ef:cf:39:77:72:8f:
1b:ae:12:bc:9f:73:a9:b3:c8:7d:db:5d:9d:e3:21:
dc:7b:fb:2d:60:08:ea:59:c9:63:3c:be:d7:08:56:
b6:d5:27:93:3e:dc:b7:cd:97:e6:a5:45:4c:06:92:
1a:60:29:7f:3d:16:61:a1:75:fc:bc:82:1b:e1:76:
a5:6a:e3:0c:e6:e7:2f:f7:5f:99:c2:c3:62:80:76:
ed:a1:85:7b:c4:d7:1e:74:ff:66:59:dd:94:6e:b4:
b3:b0:e7:ce:3a:df:d9:68:5f:41:96:af:d6:fa:3b:
23:ad:39:22:6f:3a:f8:ec:d2:82:16:9b:99:ac:f6:
b7:a8:e9:e3:18:97:75:32:9d:54:08:8e:b3:c9:e0:
1b:28:d1:e1:b3:45:0a:cf:04:be:ad:ba:1b:03:e9:
de:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
27:C4:F3:E0:24:8F:78:14:8D:B8:48:C3:00:73:D9:AD:0F:09:C4:45
X509v3 Authority Key Identifier:
keyid:65:3F:55:62:91:21:B6:0F:B1:9C:97:F9:9C:75:DD:6F:01:5D:D6:E8
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZT9VYpEhtg-xnJf5nHXdbwFd1ug.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/74cf3b-9f5c-4f5e-96c4-2926d281b514/1/J8Tz4CSPeBSNuEjDAHPZrQ8JxEU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/74cf3b-9f5c-4f5e-96c4-2926d281b514/1/ZT9VYpEhtg-xnJf5nHXdbwFd1ug.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
146.101.79.0/24
Signature Algorithm: sha256WithRSAEncryption
05:bb:2b:36:a5:f4:33:d4:0b:1d:7d:18:3c:71:2a:44:47:b3:
ee:ec:17:69:84:a9:58:4e:96:f3:55:04:e4:7e:5e:ff:77:92:
64:f1:ca:1b:58:02:e5:80:79:57:36:28:0c:db:85:75:5e:a4:
c2:4f:ce:8b:b4:68:85:93:ae:e6:ab:f6:bb:8e:b5:ef:a3:23:
4c:cf:fe:e6:26:72:41:89:70:05:47:a5:61:f2:b9:58:58:f7:
2a:8a:78:03:1e:b0:05:56:66:a4:ab:cc:f6:60:5d:6e:ee:7e:
19:1c:48:45:84:49:03:91:4a:56:ad:83:66:f2:fd:e3:1c:fe:
db:fe:1a:55:c4:d2:a4:99:55:66:c4:a8:63:eb:4f:ba:2d:a0:
ce:b8:3e:a0:ec:69:60:fc:df:6d:6b:0b:30:f1:50:98:c7:28:
ae:d0:72:cd:ff:9a:2f:41:99:47:1f:dc:91:fd:d6:fa:7a:64:
29:e5:ca:a3:34:6b:2c:23:45:a5:3e:66:6d:e1:0f:8a:40:a0:
51:b7:db:6a:fa:31:07:01:69:23:4b:7a:d3:b4:09:91:81:a1:
55:fb:37:10:9b:08:cd:ba:9f:24:aa:5e:9a:b0:f1:69:bb:e5:
be:89:a6:7a:78:ba:85:c2:27:48:9c:68:52:b1:b5:3f:81:a5:
7d:1f:17:3a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:50:15 2024 by rpki-client on console-fra.rpki-client.org